Volume-4 Issue-1, May 2024 – Indian Journal of Cryptography and Network Security (IJCNS) https://www.ijcns.latticescipub.com Exploring Innovation | ISSN: 2582-9238 (Online) | A Periodical Journal | Reg. No: C/1383209 | Published by Lattice Science Publication (LSP) Mon, 25 Nov 2024 07:07:56 +0000 en-US hourly 1 https://wordpress.org/?v=7.0 https://www.ijcns.latticescipub.com/wp-content/uploads/2021/04/cropped-IJCNS-logo-WFS-32x32.png Volume-4 Issue-1, May 2024 – Indian Journal of Cryptography and Network Security (IJCNS) https://www.ijcns.latticescipub.com 32 32 A1426054124 https://www.ijcns.latticescipub.com/portfolio-item/a1426054124/ Tue, 28 May 2024 11:09:04 +0000 https://www.ijcns.latticescipub.com/?post_type=portfolio&p=989 The Indian Journal of Cryptography and Network Security (IJCNS) has ISSN 2582-9238 (online), an open-access, peer-reviewed, periodical half-yearly international journal, which is published by Lattice Science Publication (LSP) in May and November. The aim of the journal is to publish high quality peer–reviewed original articles in the area of Cryptography and Network Security that covers Cryptographic Protocols, Cryptography and Coding, Untrace-Ability, Privacy and Authentication, Key Management, Authentication, Trust Management, Quantum Cryptography, Computational Intelligence in Security, Artificial Immune Systems, Biological & Evolutionary, Computation, Intelligent Agents and Systems, Reinforcement & Unsupervised Learning, Autonomy-Oriented Computing, Coevolutionary Algorithms, Fuzzy Systems, Biometric Security, Trust Models and Metrics, Regulation and Trust Mechanisms, Data Integrity, Models for Authentication, Trust and Authorization, Wireless Network Security, Information Hiding, Data & System Integrity, Access Control and Intrusion Detection, Intrusion Detection and Vulnerability Assessment, Authentication and Non-Repudiation, Identification and Authentication Insider Threats and Countermeasures, Intrusion Detection & Prevention, Secure Cloud Computing, Security Information Systems Architecture and Design and Security Patterns, Security Management, Security Requirements (Threats, Vulnerabilities, Risk, Formal Methods, etc.), Sensor and Mobile ad hoc Network Security, Service and Systems Design and QOS Network Security, System Security, Intrusion Detection, Secure end Systems, Secure Operating Systems, Data Base Security, Security Infrastructures, Security Evaluation, Software Security, Security and Privacy in Mobile Systems, Security and Privacy in Pervasive/Ubiquitous Computing, Security and Privacy in Web Services, Security and Privacy Policies, Security Area Control, Security Deployment, Security Engineering, Security for Grid Computing, Security in Distributed Systems, Network Security, Internet Security, Firewalls, Mobile Security, Security Agents, Protocols, Anti-Virus and Anti-Hacker Measures, Content Protection, Software Protection, Tamper Resistant Software, Electronic Commerce, Electronic Government, Health, Telecommunications, Mobility, Foundations, Privacy, Access Control, Identification, Applied Cryptography and Formal Methods in Information Security.#Cryptographic Protocols #Cryptography and Coding #Untrace-Ability #Privacy and Authentication #Key Management #Authentication #Trust Management #Quantum Cryptography #Computational Intelligence in Security #Artificial Immune Systems #Biological & Evolutionary Computation #Intelligent Agents and Systems #Reinforcement & Unsupervised Learning #Autonomy-Oriented Computing #Coevolutionary Algorithms #Fuzzy Systems #Biometric Security #Trust Models and Metrics #Regulation and Trust Mechanisms #Data Integrity #Models for Authentication #Trust and Authorization #Wireless Network Security #Information Hiding #Data & System Integrity #Access Control and Intrusion Detection #Intusion Detection and Vulnerability Assessment #Authentication and Non-Repudiation #Identification and Authentication #Insider Threats and Countermeasures #Intrusion Detection & Prevention #Secure Cloud Computing #Security Information Systems Architecture and Design and Security Patterns #Security Management #Security Requirements (Threats, Vulnerabilities, Risk, Formal Methods, etc.) #Sensor and Mobile ad hoc Network Security #Service and Systems Design and QOS Network Security #System Security #Intrusion Detection #Secure end Systems #Secure Operating Systems #Data Base Security #Security Infrastructures #Security Evaluation #Software Security #Security and Privacy in Mobile Systems #Security and Privacy in Pervasive/Ubiquitous Computing #Security and Privacy in Web Services #Security and Privacy Policies #Security Area Control #Security Deployment #Security Engineering #Security for Grid Computing #Security in Distributed Systems #Network Security #Internet Security #Firewalls #Mobile Security #Security Agents #Protocols #Anti-Virus and Anti-Hacker Measures #Content Protection #Software Protection #Tamper Resistant Software #Electronic Commerce #Electronic Government #Health #Telecommunications #Mobility #Foundations #Privacy #Access Control #Authentication #Identification #Applied Cryptography #Formal Methods in Information Security #PhD ademic #Scopus #SCI #LatticeScience #Springer, #ScienceDirect #IEEE #Mendeley #Research #Scholarship #UGC #SSRN #LatticeScience #ESCI #Science #Journal #Conference #SSRN #PubLons #PhD #Academic #Scopus #SCI #LatticeScience #Springer, #ScienceDirect #IEEE #Mendeley #Research #Scholarship #UGC #SSRN #LatticeScience #ESCI #Science #Journal #Conference #SSRN #PubLons

The post A1426054124 appeared first on Indian Journal of Cryptography and Network Security (IJCNS).

]]> The Indian Journal of Cryptography and Network Security (IJCNS) has ISSN 2582-9238 (online), an open-access, peer-reviewed, periodical half-yearly international journal, which is published by Lattice Science Publication (LSP) in May and November. The aim of the journal is to publish high quality peer–reviewed original articles in the area of Cryptography and Network Security that covers Cryptographic Protocols, Cryptography and Coding, Untrace-Ability, Privacy and Authentication, Key Management, Authentication, Trust Management, Quantum Cryptography, Computational Intelligence in Security, Artificial Immune Systems, Biological & Evolutionary, Computation, Intelligent Agents and Systems, Reinforcement & Unsupervised Learning, Autonomy-Oriented Computing, Coevolutionary Algorithms, Fuzzy Systems, Biometric Security, Trust Models and Metrics, Regulation and Trust Mechanisms, Data Integrity, Models for Authentication, Trust and Authorization, Wireless Network Security, Information Hiding, Data & System Integrity, Access Control and Intrusion Detection, Intrusion Detection and Vulnerability Assessment, Authentication and Non-Repudiation, Identification and Authentication Insider Threats and Countermeasures, Intrusion Detection & Prevention, Secure Cloud Computing, Security Information Systems Architecture and Design and Security Patterns, Security Management, Security Requirements (Threats, Vulnerabilities, Risk, Formal Methods, etc.), Sensor and Mobile ad hoc Network Security, Service and Systems Design and QOS Network Security, System Security, Intrusion Detection, Secure end Systems, Secure Operating Systems, Data Base Security, Security Infrastructures, Security Evaluation, Software Security, Security and Privacy in Mobile Systems, Security and Privacy in Pervasive/Ubiquitous Computing, Security and Privacy in Web Services, Security and Privacy Policies, Security Area Control, Security Deployment, Security Engineering, Security for Grid Computing, Security in Distributed Systems, Network Security, Internet Security, Firewalls, Mobile Security, Security Agents, Protocols, Anti-Virus and Anti-Hacker Measures, Content Protection, Software Protection, Tamper Resistant Software, Electronic Commerce, Electronic Government, Health, Telecommunications, Mobility, Foundations, Privacy, Access Control, Identification, Applied Cryptography and Formal Methods in Information Security.#Cryptographic Protocols #Cryptography and Coding #Untrace-Ability #Privacy and Authentication #Key Management #Authentication #Trust Management #Quantum Cryptography #Computational Intelligence in Security #Artificial Immune Systems #Biological & Evolutionary Computation #Intelligent Agents and Systems #Reinforcement & Unsupervised Learning #Autonomy-Oriented Computing #Coevolutionary Algorithms #Fuzzy Systems #Biometric Security #Trust Models and Metrics #Regulation and Trust Mechanisms #Data Integrity #Models for Authentication #Trust and Authorization #Wireless Network Security #Information Hiding #Data & System Integrity #Access Control and Intrusion Detection #Intusion Detection and Vulnerability Assessment #Authentication and Non-Repudiation #Identification and Authentication #Insider Threats and Countermeasures #Intrusion Detection & Prevention #Secure Cloud Computing #Security Information Systems Architecture and Design and Security Patterns #Security Management #Security Requirements (Threats, Vulnerabilities, Risk, Formal Methods, etc.) #Sensor and Mobile ad hoc Network Security #Service and Systems Design and QOS Network Security #System Security #Intrusion Detection #Secure end Systems #Secure Operating Systems #Data Base Security #Security Infrastructures #Security Evaluation #Software Security #Security and Privacy in Mobile Systems #Security and Privacy in Pervasive/Ubiquitous Computing #Security and Privacy in Web Services #Security and Privacy Policies #Security Area Control #Security Deployment #Security Engineering #Security for Grid Computing #Security in Distributed Systems #Network Security #Internet Security #Firewalls #Mobile Security #Security Agents #Protocols #Anti-Virus and Anti-Hacker Measures #Content Protection #Software Protection #Tamper Resistant Software #Electronic Commerce #Electronic Government #Health #Telecommunications #Mobility #Foundations #Privacy #Access Control #Authentication #Identification #Applied Cryptography #Formal Methods in Information Security #PhD ademic #Scopus #SCI #LatticeScience #Springer, #ScienceDirect #IEEE #Mendeley #Research #Scholarship #UGC #SSRN #LatticeScience #ESCI #Science #Journal #Conference #SSRN #PubLons #PhD #Academic #Scopus #SCI #LatticeScience #Springer, #ScienceDirect #IEEE #Mendeley #Research #Scholarship #UGC #SSRN #LatticeScience #ESCI #Science #Journal #Conference #SSRN #PubLons

Security of the Secp256k1 Elliptic Curve used in the Bitcoin BlockchainCROSSMARK Color horizontal
Kannan Balasubramanian

Dr. Kannan Balasubramanian, Professor, School of Computing, SASTRA University, Thanjavur (TamilNadu), India.

Manuscript received on 01 December 2023 | Revised Manuscript received on 09 December 2023 | Manuscript Accepted on 15 May 2024 | Manuscript published on 30 May 2024 | PP: 1-5 | Volume-4 Issue-1, May 2024 | Retrieval Number: 100.1/ijcns.A1426054124 | DOI: 10.54105/ijcns.A1426.04010524

Open Access | Ethics and Policies | Cite | Zenodo | OJS | Indexing and Abstracting
© The Authors. Published by Lattice Science Publication (LSP). This is an open-access article under the CC-BY-NC-ND license (http://creativecommons.org/licenses/by-nc-nd/4.0/)

Abstract: The article delves into the intricate characteristics and security properties of the secp256k1 elliptic curve used for the generation of addresses in the Bitcoin blockchain. The Bitcoin blockchain is a decentralized digital ledger that records all transactions made with Bitcoin cryptocurrency. In this work, the secp256k1 elliptic curve and its parameters and the method of generating private and public keys using random numbers are described. While the private key allows for the signing of transactions to spend Bitcoin, the corresponding public key and address enable others to verify transactions and send funds to that specific address on the blockchain, ensuring security, authenticity, and privacy in the decentralized network. The attacks on the use of secp256k1 for generating the bitcoin addresses like the Brute force attack, twist attack, fault attacks, and side channel attacks in the implementation of the elliptic curve are discussed. By maintaining the security and integrity of secp256k1, we can ensure that cryptographic operations, such as digital signatures and key exchanges, remain uncompromised. If the curve’s security were compromised, malicious users could potentially derive private keys from public keys, leading to unauthorized transactions, double-spending, or other malicious activities. The security of implementation can be enhanced by ensuring cryptographic libraries and software implementations that utilize secp256k1 undergo thorough testing and validation to ensure correct and secure operations. The important attacks on blockchain technology like the 51% attack, Sybil attack, Double-Spending attack, and Smart Contract vulnerabilities are discussed. Through a comprehensive exploration, readers will gain insights into why this particular elliptic curve was chosen for use in Bitcoin’s cryptographic protocols, highlighting its role in ensuring the robustness and integrity of the blockchain ecosystem. 

Keywords: Elliptic Curves, Brute Force Attack, Twist Attack, Side-Channel Attacks, Random Number Generators, Sybil Attack, Double-Spending Attack
Scope of the Article: Applied Cryptography

Download PDF

The post A1426054124 appeared first on Indian Journal of Cryptography and Network Security (IJCNS).

]]>